search
Official Website

book-blankDump Packet across operating systems

hashtag
Windows (Windows 7/10/11, Windows Server)

  1. Download Windows x64 Installer or PortableApps version from Wireshark's official websitearrow-up-right.

  2. Run Wireshark and select main Interface (typically Ethernet) to start packet capture.

  1. Stop capture immediately when anomaly is detected.

  1. Save and provide capture file to technical staff for investigation.

hashtag
Linux (Debian, Ubuntu)

  1. Install tcpdump using apt package manager: apt install tcpdump

  1. Identify main Interface using ip addr (e.g., eth0)

  1. Start capture: tcpdump -i <Interface> -s 65535 -w output.pcap

triangle-exclamation

Press Ctrl + C to stop when anomaly occurs, provide output.pcap file with timestamp.

PreviousPort / Service LimitNextPerform packet capture across operating systems

Last updated